Bugtraq: by date
RSS Feed
About List
All Lists
Previous period
367 messages
starting Jun 30 04 and
ending Jul 31 04
Date index |
Thread index |
Author index
Wednesday, 30 June
FW: [security bulletin] SSRT3552 HP-UX running ARPA transport local Denial of Service (DoS) Boren, Rich (SSRT)
Thursday, 01 July
RE: Microsoft technologies. By default, non-HIPAA compliant? Boring, Andrew
Unprevileged user can change quota on Domino Andreas Klein
(IE/SCOB) Switching Software Because of Bugs: Some Facts About Software and Security bugs Drew Copley
Re: php codes injection in phpMyAdmin version 2.5.7. Marc Delisle
SecurityLab report: The Top 10 Most Critical Vulnerabilities in June 2004 Alexander
Re: php codes injection in phpMyAdmin version 2.5.7. Marc Delisle
DoS against Domino 6.5.1 Andreas Klein
Re: Microsoft technologies. By default, non-HIPAA compliant? Dave Paris
Friday, 02 July
DLINK 624, script injection vulnerability Gregory Duchemin
Announce: RSBAC v1.2.3 released Amon Ott
RE: Microsoft technologies. By default, non-HIPAA compliant? bob () dexis net
MD5 hash cracking service md5er
Re: Microsoft technologies. By default, non-HIPAA compliant? Nicholas Weaver
[ GLSA 200407-01 ] Esearch: Insecure temp file handling Joshua J. Berry
Re: Microsoft technologies. By default, non-HIPAA compliant? Nick FitzGerald
Brightmail leaks other user's spam Thomas Springer
SUSE Security Announcement: kernel (SUSE-SA:2004:020) Roman Drahtmueller
FreeBSD Security Advisory FreeBSD-SA-04:13.linux FreeBSD Security Advisories
Multiple Vulnerabilities in Easy Chat Server 1.2 Donato Ferrante
XSS in SCI Photo Chat Server 3.4.9 Donato Ferrante
Sanity check in Centre Manip
Registry fixes for the recent IE vulnerabilities Mike Cheng
[HW-MED] XSS in Netegrity IdentityMinder vuln
Saturday, 03 July
Registry Fix For Variant of Scob Drew Copley
Enterasys XSR Security Routers DoS Frederico Queiroz
RE: [Full-Disclosure] THE VULNERABILITY STILL WORKS AFTER TODAY'S PATCH Jelmer
RE: RE: SUPER SPOOF DELUXE Re: [Full-Disclosure] Microsoft and Security http-equiv () excite com
THE INSIDER VULNERABILITY STILL WORKS AFTER TODAY'S PATCH liudieyu
Re: [Full-Disclosure] Fix for IE ADODB.Stream vulnerability is out http-equiv () excite com
Public Review of OIS Security Vulnerability Reporting and Response Guidelines OIS
Cart32 Input Validation Flaw in 'GetLatestBuilds?cart32=' Permits Remote Cross-Site Scripting Attacks Dr Ponidi
The 3 D's: Demo for the Dullards and Dunces http-equiv () excite com
[SECURITY] [DSA 527-1] New pavuk packages fix buffer overflow Matt Zimmerman
Re: DLINK 614+ - SOHO routers, system DOS Gregory Duchemin
[SECURITY] [DSA 526-1] New webmin packages fix multiple vulnerabilities Matt Zimmerman
Monday, 05 July
Linux Virtual Server/Secure Context procfs shared permissions flaw Veit Wahlich
Re: [Dailydave] Re: [Full-Disclosure] Public Review of OIS Security Vulnerability Reporting and Response Guidelines Halvar Flake
Re: [Full-Disclosure] Public Review of OIS Security Vulnerability Reporting and Response Guidelines dave
[ GLSA 200407-04 ] Pure-FTPd: Potential DoS when maximum connections is reached Thierry Carrez
XSS in 12Planet Chat Server 2.9 Donato Ferrante
Re: Public Review of OIS Security Vulnerability Reporting and ResponseGuidelines Fred Mobach
[ GLSA 200407-03 ] Apache 2: Remote denial of service attack Thierry Carrez
unreal ircd ip cloaking subsystem vulnerability bartavelle
Fastream NETFile FTP/Web Server Input validation Errors at4r
MySQL Authentication Bypass NGSSoftware Insight Security Research
Re: Java applet crashing with native assertion Ronald Oussoren
RE: Microsoft and Security Alun Jones
RE: Registry Fix For Variant of Scob Thor Larholm
RE: Microsoft and Security Radoslav Dejanovic
[ GLSA 200407-05 ] XFree86, X.org: XDM ignores requestPort setting Thierry Carrez
Do not adopt OIS standards (Was: Public Review of OIS Security Vulnerability Reporting and Response Guidelines) Ferguson, Ann
Re: Microsoft and Security Justin Wheeler
Re: Public Review of OIS Security Vulnerability Reporting and Response Guidelines Pete Herzog
Tuesday, 06 July
BENCHMARK() is not the only way to determine successfull MySQL injection Philip Stoev
RE: Microsoft and Security Alun Jones
RE: Microsoft technologies. By default, non-HIPAA compliant? Anything But Microsoft
RE: Registry Fix For Variant of Scob Drew Copley
xingtone opens server on desktop using undocumented protocol (probably http) Burton M. Strauss III
RE: Registry Fix For Variant of Scob Jelmer
[OpenPKG-SA-2004.030] OpenPKG Security Advisory (png) OpenPKG
Re: Microsoft and Security Jason Coombs
Re: [ISN] E-Mail Snooping Ruled Permissible Jason Coombs
backdoor menu on conexant chipset dsl router (Zoom X3) Adam Laurie
RE: Microsoft technologies. By default, non-HIPAA compliant? Tina Bird
Re: Registry Fix For Variant of Scob http-equiv () excite com
Eudora 6.1.2 attachment spoof Paul Szabo
RE: Microsoft and Security David F. Skoll
Re: [Full-Disclosure] Public Review of OIS Security Vulnerability Reporting and Response Guidelines rsh
Wednesday, 07 July
MDKSA-2004:066 - Updated kernel packages fix multiple vulnerabilities Mandrake Linux Security Team
Enterasys XSR Security Router Record Route Denial Of Service Vulnerability (More information) Frederico Queiroz
Comersus Cart Cross-Site Scripting Vulnerability Thomas Ryan
Npds BB HTML Injection Benjamin Tolman
Re: (IE/SCOB) Switching Software Because of Bugs: Some Facts About Software and Security bugs Thomas C. Greene
Can we prevent IE exploits a priori? security-bugtraq
FW: [security bulletin] SSRT4718 rev.0 HP Tru64 UNIX NTP Integer Overflow Boren, Rich (SSRT)
Comersus Cart Improper Request Handling Thomas Ryan
Re: Microsoft and Security Adam Shostack
RE: Can we prevent IE exploits a priori? Drew Copley
Suggestion: erase data posted to the Web Andrew Daviel
Scob variant using IIS 6.0 or just upgrades ? Hubbard, Dan
Thursday, 08 July
Security contact wanted S G Masood
RE: Suggestion: erase data posted to the Web Michael Wojcik
Re: Suggestion: erase data posted to the Web Nick Lamb
Re: Suggestion: erase data posted to the Web Luciano Miguel Ferreira Rocha
RE: Can we prevent IE exploits a priori? James C Slora Jr
[ GLSA 200407-07 ] Shorewall : Insecure temp file handling Thierry Carrez
Re: Public Review of OIS Security Vulnerability Reporting and ResponseGuidelines ET LoWNOISE
[GLSA 200407-06] libpng: Buffer overflow on row buffers Sune Kloppenborg Jeppesen
Friday, 09 July
Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Bipin Gautam
[OpenPKG-SA-2004.031] OpenPKG Security Advisory (dhcpd) OpenPKG
Re: Suggestion: erase data posted to the Web devnull
Mozilla Security Advisory 2004-07-08 dveditz
Re: Can we prevent IE exploits a priori? Jason Coombs
Re: Microsoft and Security Valdis . Kletnieks
Microsoft Word Email Object Data Vulnerability James C. Slora, Jr.
MOZILLA: execute local file and its fix liudieyu
[ GLSA 200407-08 ] Ethereal: Multiple security problems Kurt Lieber
CYBSEC - Security Advisory: Denial of Service in IBM WebSphere Edge Server Leandro Meiners
Re: Can we prevent IE exploits a priori? Thor Larholm
Re: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Tom Spencer
Re: Microsoft Word Email Object Data Vulnerability http-equiv () excite com
RE: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Eric McCarty
MDKSA-2004:067 - Updated ethereal packages fix multiple vulnerabilities Mandrake Linux Security Team
RE: Microsoft Word Email Object Data Vulnerability Drew Copley
Saturday, 10 July
Covert Channels allow Cross-Site-Java in Microsoft VM Marc Schoenefeld
current leading bots used in drone armies [June/July 2004] Gadi Evron
[tool] p0f 2.0.4 is out Michal Zalewski
Re: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Bipin Gautam
RE: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] DaiTengu
Monday, 12 July
Re: Covert Channels allow Cross-Site-Java in Microsoft VM Siva Subbu
MSOE Javascript Execution Vulnerability Paul
[ GLSA 200407-10 ] rsync: Directory traversal in rsync daemon Kurt Lieber
[BUGZILLA] Multiple vulnerabilities in Bugzilla 2.16.5 and 2.17.7 David Miller
MSIE Download Window Filename + Filetype Spoofing Vulnerability Paul
Media Preview Script Execution Vulnerability Paul
I small poem in JScript Berend-Jan Wever
HijackClick 3 Paul
MOZILLA: SHELL can execute remote EXE program liudieyu
RE: MSIE Download Window Filename + Filetype Spoofing Vulnerability Drew Copley
[ GLSA 200407-09 ] MoinMoin: Group ACL bypass Kurt Lieber
Re: HijackClick 3 http-equiv () excite com
Re: Covert Channels allow Cross-Site-Java in Microsoft VM Marc Schoenefeld
Remote crash of Half-Life servers and clients (versions before the 07 July 2004) Luigi Auriemma
MSIE Similar Method Name Redirection Cross Site/Zone Scripting Vulnerability Paul
Tuesday, 13 July
RE: MSIE Download Window Filename + Filetype Spoofing Vulnerability Polazzo Justin
RE: MSIE Download Window Filename + Filetype Spoofing Vulnerability Drew Copley
Two Vulnerabilities in Mozilla may lead to remote compromise Mind Warper
Moodle XSS Vulnerability Thomas Waldegger
Re: Two Vulnerabilities in Mozilla may lead to remote compromise Philliph
@stake advisory: WebSTAR (5.3.2 and below) Multiple Vulnerabilities Advisories
Re: Two Vulnerabilities in Mozilla may lead to remote compromise Daniel Veditz
RE: Two Vulnerabilities in Mozilla may lead to remote compromise Jelmer
RE: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Sym Security
Re: MSIE Similar Method Name Redirection Cross Site/Zone Scripting Vulnerability http-equiv () excite com
IE Shell URI Download and Execute, POC Ferruh Mavituna
Microsoft Window Utility Manager Local Elevation of Privileges Vivek Rathod (Application Security, Inc.)
phrack #62 has been released phrack staff
aterm 0.4.2 tty permission weakness Maarten Tielemans
RE: Re: HijackClick 3 Drew Copley
Re: Two Vulnerabilities in Mozilla may lead to remote compromise Mind Warper
RE: Two Vulnerabilities in Mozilla may lead to remote compromise Darren Pilgrim
RE: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Sym Security
Find the tag continued James C. Slora, Jr.
Wednesday, 14 July
HtmlHelp - .CHM File Heap Overflow Brett Moore
Microsoft Windows Task Scheduler '.job' Stack Overflow NGSSoftware Insight Security Research
Unchecked buffer in mstask.dll Brett Moore
Ref: http://www.securityfocus.com/archive/1/367866, Jul 1 2004 1:19PM, Subj: Brightmail leaks other user's spam Sym Security
Advisory 12/2004: PHP strip_tags() bypass vulnerability Stefan Esser
[ GLSA 200407-11 ] wv: Buffer overflow vulnerability Thierry Carrez
Advisory 11/2004: PHP memory_limit remote vulnerability Stefan Esser
Re: Microsoft Window Utility Manager Local Elevation of Privileges Chris Paget
RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Ferruh Mavituna
[security bulletin] SSRT4741 rev.1 DCE for HP OpenVMS Potential RPC Buffer Overflow Attack VU#259796, VU#568148, VU#326746 Boren, Rich (SSRT)
RE: HijackClick 3 http-equiv () excite com
TSSA-2004-013 - php tinysofa Security Team
PHP BB bug sasan hezarkhani
RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Drew Copley
[HV-MED] DoS in Microsoft SMS Client vuln
RE: Unchecked buffer in mstask.dll Thor Larholm
Thursday, 15 July
MDKSA-2004:070 - Updated freeswan and super-freeswan packages fix certificate chain authentication vulnerability Mandrake Linux Security Team
MDKSA-2004:068 - Updated php packages fix multiple vulnerabilities Mandrake Linux Security Team
[ GLSA 200407-13 ] PHP: Multiple security vulnerabilities Kurt Lieber
[CLA-2004:846] Conectiva Security Announcement - kernel Conectiva Updates
Re: Security contact wanted Patrick van Zweden
Re: current leading bots used in drone armies [June/July 2004] Jan Knutar
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Adi Kriegisch
The Impact of RFC Guidelines on DNS Spoofing Attacks have2Banonymous
White Paper: 0x00 vs ASP file upload scripts Brett Moore
RE: Unchecked buffer in mstask.dll Paul Szabo
Re: aterm 0.4.2 tty permission weakness Armin Wolfermann
Trend Micro Officescan for Win2k strange behaviour Marco Monicelli
Re: aterm 0.4.2 tty permission weakness Coleman Kane
RE: Two Vulnerabilities in Mozilla may lead to remote compromise Pavel Kankovsky
Re: aterm 0.4.2 tty permission weakness Sebastian Hans
Re: [security] aterm 0.4.2 tty permission weakness lorenzo
RE: phrack #62 has been released Glenn_Everhart
RE: Unchecked buffer in mstask.dll Thor Larholm
MDKSA-2004:069 - Updated ipsec-tools packages fix multiple vulnerabilities Mandrake Linux Security Team
Re: Microsoft Window Utility Manager Local Elevation of Privileges KF (lists)
Friday, 16 July
Re: Unchecked buffer in mstask.dll Mark Litchfield
SUSE Security Announcement: php4 (SUSE-SA:2004:021) Sebastian Krahmer
[waraxe-2004-SA#034 - XSS and path full path disclosure in PhpBB 2.0.8] Janek Vind
[security bulletin] SSRT4704 rev.0 HP-UX wu-ftpd local unauthorized access Boren, Rich (SSRT)
RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Todd Towles
Re: PHP BB bug Rich Lafferty
RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Ferruh Mavituna
[waraxe-2004-SA#035 - Multiple security holes in PhpNuke - part 2] Janek Vind
Re: PHP BB bug micheal () michealcottingham com
Re: Microsoft and Security Charles Otstot
RE: MSIE Similar Method Name Redirection Cross Site/Zone Scripting Vulnerability Thor Larholm
Re: Re: HijackClick 3 Paul
Re: Can we prevent IE exploits a priori? bugtraq223344
RE: RE: HijackClick 3 Thor Larholm
[ GLSA 200407-12 ] Linux Kernel: Remote DoS vulnerability with IPTables TCP Handling Tim Yamin
RE: Trend Micro Officescan for Win2k strange behaviour Seth Hall
Saturday, 17 July
[OpenPKG-SA-2004.032] OpenPKG Security Advisory (apache) OpenPKG
Re: Microsoft Window Utility Manager Local Elevation of Privileges Cesar
[tool] webstretch 0.1.6 http inspection proxy Simon Shanks
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Theo Van Dinter
RE: MSIE Download Window Filename + Filetype Spoofing Vulnerability Eric McCarty
Hotmail Cross Site Scripting Vulnerability Paul
[CLA-2004:847] Conectiva Security Announcement - php4 Conectiva Updates
[CLA-2004:848] Conectiva Security Announcement - webmin Conectiva Updates
[FMADV] Format String Bug in OllyDbg 1.10 ned
MSIE Overly Trusted Location Variant Method Cache Vulnerability Paul
Re: Hotmail Cross Site Scripting Vulnerability GreyMagic Security
Medal of Honor remote buffer-overflow Luigi Auriemma
Web_Store.cgi allows Command Execution Zero_X www . lobnan . de Team
Re: Moodle XSS Vulnerability Martin Dougiamas
utilman.exe exploit Iván Rodriguez Almuiña
Re: MSOE Javascript Execution Vulnerability Fabricio A. Angeletti
Re: MSOE Javascript Execution Vulnerability Monu
Re: Trend Micro Officescan for Win2k strange behaviour 3APA3A
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Ray Slakinski
[Tool] HardTCP "Hardening TCP/IP" + SOURCE D'Amato Luigi
Re: Mac OS X stores login/Keychain/FileVault passwords on disk johnny
Re: White Paper: 0x00 vs ASP file upload scripts Martin Eiszner
Re: Norton AntiVirus Denial Of Service Vulnerability [Part: !!!] Bipin Gautam
Re: Hotmail Cross Site Scripting Vulnerability Andrew Hunter
What A Drag http-equiv () excite com
Sunday, 18 July
Re: [Full-Disclosure] RE: Unchecked buffer in mstask.dll Nick FitzGerald
RE: Unchecked buffer in mstask.dll Dmitry Yu. Bolkhovityanov
RE: [ok] [Full-Disclosure] RE: Unchecked buffer in mstask.dll Curt Purdy
Re: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Fabricio A. Angeletti
Mozilla Bug Isn't So Bad Paul
Re: [Full-Disclosure] RE: Unchecked buffer in mstask.dll Jordan Cole (stilist)
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Kurt Seifried
Re: Microsoft and Security Lucas Holt
RE: [Full-Disclosure] Re: IE Shell URI Download and Execute, POC Ferruh Mavituna
Re: [Full-Disclosure] RE: Unchecked buffer in mstask.dll Curt Purdy
Monday, 19 July
[SECURITY] [DSA 529-1] New netkit-telnet-ssl package fixes format string vulnerability Matt Zimmerman
[SECURITY] [DSA 530-1] New l2tpd packages fix buffer overflow Matt Zimmerman
[SECURITY] [DSA 528-1] New ethereal packages fix denial of service Matt Zimmerman
RE: The Impact of RFC Guidelines on DNS Spoofing Attacks have2Banonymous
new utilman.exe exploit (allinone remote exploitation) Iván Rodriguez Almuiña
[waraxe-2004-SA#036 - Multiple security holes in PhpNuke - part 3] Janek Vind
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Chris Boyd
Re: Mac OS X stores login/Keychain/FileVault passwords on disk James Goodlet
Re: Mozilla Bug Isn't So Bad Bill
Re: PHP BB bug Micheal Cottingham
Artmedic kleinanzeigen include vulnerability Francisco Alisson
RE: Mac OS X stores login/Keychain/FileVault passwords on disk Michael Shirk
Tuesday, 20 July
PhpBB HTTP Response Splitting & Cross Site Scripting vulnerabilities Ory Segal
More Webserver / IE Exploits Hubbard, Dan
[ GLSA 200407-14 ] Unreal Tournament 2003/2004: Buffer overflow in 'secure' queries Thierry Carrez
[FLSA-2004:1734] Updated mailman resolves security vulnerability Jesse Keating
Re: More Webserver / IE Exploits Benjamin Franz
[FLSA-2004:1324] Updated libxml2 resolves security vulnerabilities Jesse Keating
Buffer overflow in Whisper FTP Surfer 1.0.7 Komrade
Inappropriate methods exposed in XML -what's the essence? portsmut
OpenServer 5.0.6 OpenServer 5.0.7 : MMDF Various buffer overflows and other security issues please_reply_to_security
Denial of Service vulnerability in several Lexmark HTTP servers Peter Kruse
dos_in_file_share_2.6 nekd0
[ GLSA 200407-15 ] Opera: Multiple spoofing vulnerabilities Sune Kloppenborg Jeppesen
Wednesday, 21 July
mi2g - fud, lies and libel not-mi2g
Re: Denial of Service vulnerability in several Lexmark HTTP servers Eric Sesterhenn / snakebyte
Bug@FlashFTPd CoolICE
[SECURITY] [DSA 531-1] New php4 packages fix multiple vulnerabilities Matt Zimmerman
Denial of Service in Conceptronic CADSLR1 Router Administrador de 'Shell Security'
DOS@XitamiHTTPd CoolICE
Thursday, 22 July
Security Release - Samba 3.0.5 and 2.2.10 Gerald (Jerry) Carter
[OpenPKG-SA-2004.034] OpenPKG Security Advisory (php) OpenPKG
Comcast(tm) Email Manager allows arbitrary java and activex code execution Michael Scheidell
[CLA-2004:851] Conectiva Security Announcement - samba Conectiva Updates
[ GLSA 200407-17 ] l2tpd: Buffer overflow Kurt Lieber
[OpenPKG-SA-2004.033] OpenPKG Security Advisory (samba) OpenPKG
@stake advisory: HP dced Remote Command Execution Multiple OSes Advisories
Samba 3.x swat preauthentication buffer overflow Evgeny Demidov
TSSA-2004-014 - samba tinysofa Security Team
SWAT PreAuthorization PoC bugtraq
Friday, 23 July
MDKSA-2004:071 - Updated samba packages fix vulnerability in SWAT, samba-server. Mandrake Linux Security Team
Forward:FullDisclosure/IE - Possible Address Spoofing Liu Die Yu
[SECURITY] [DSA 533-1] New courier packages fix cross-site scripting vulnerability Matt Zimmerman
SUSE Security Announcement: samba (SUSE-SA:2004:022) Thomas Biege
[SECURITY] [DSA 534-1] New mailreader packages fix directory traversal vulnerability Matt Zimmerman
mi2g attacks "so-called" security sites Rob Rosenberger
OpenServer 5.0.7 : Mozilla Multiple issues please_reply_to_security
Apache 1.3.x mod_userdir Exploit (wgetusr.c) John Bissell
eSafe: Could this be exploited? Hugo van der Kooij
LNSA-#2004-0015: buffer overflow in samba (Jul, 23 2004) Vincenzo Ciaglia
APC Security Advisory – Denial of Service Vulnerability with PowerChuteBusinessEdition security.advisory
FW: [Full-Disclosure] Progress and Challenges {tonyFelice}
[security bulletin] SSRT4773 HP-UX xfs and stmkfont remote unauthorized access Boren, Rich (SSRT)
LNSA-#2004-0016: Multiple problems in Ethereal 0.10.4 (Jul, 23 2004) Vincenzo Ciaglia
Saturday, 24 July
EasyWeb FileManager Directory Traversal sullo
eSeSIX Thintune thin client multiple vulnerabilities Loss, Dirk
Re: eSafe: Could this be exploited? Nick FitzGerald
MS SMS DOS Proof-of-concept code and Snort sig wang
Re: eSafe: Could this be exploited? Oliver () greyhat de
Re: DoS against Domino 6.5.1 Andreas Klein
Re: Mac OS X stores login/Keychain/FileVault passwords on disk Adi Kriegisch
Re: eSafe: Could this be exploited? 3APA3A
Easyins Stadtportal Francisco Alisson
Monday, 26 July
TSL-2004-0039 - multi Trustix Security Advisor
[ GLSA 200407-19 ] Pavuk: Digest authentication helper buffer overflow Kurt Lieber
Linux Netwosix Bugzilla - Bugtracking System Vincenzo Ciaglia
QUESTION Alex Mega
Re: EasyWeb FileManager Directory Traversal Noam Rathaus
Re: eSafe: Could this be exploited? Andreas Constantinides (MegaHz)
ASPRunner Multiple Vulnerabilities Ferruh Mavituna
Re: eSafe: Could this be exploited? MegaHz
Mozilla Firefox Certificate Spoofing E.Kellinis
NucleusCMS 3.01 SQL Injection Vulnerability acidbits
CVS woes: .cvspass Chiaki
[ GLSA 200407-20 ] Subversion: Vulnerability in mod_authz_svn Joshua J. Berry
OSX Panther Internet Connect - Local root br00t
Tuesday, 27 July
[security bulletin] SSRT4782 rev. 0 HP-UX CIFS Server potential remote root access Boren, Rich (SSRT)
IRM 009: RiSearch and RiSearch ProPro are vulnerable to open FTP/HTTP proxy, directory listings and file disclosure vulnerabilities IRM Advisories
Re: Mozilla Firefox Certificate Spoofing Chris Brown
[SECURITY] [DSA 532-2] New libapache-mod-ssl packages fix multiple vulnerabilities Matt Zimmerman
Re: CVS woes: .cvspass Valdis . Kletnieks
Re: QUESTION Viktor Larionov
RE: Forward:FullDisclosure/IE - Possible Address Spoofing Chenghuai Lu
Re: eSafe: Could this be exploited? Hugo van der Kooij
Re: CVS woes: .cvspass Greg A. Woods
Wednesday, 28 July
[CLA-2004:852] Conectiva Security Announcement - kernel Conectiva Updates
[Paper] Small XSS Paper Ferruh Mavituna
WASC Releases Web Security Threat Classification Jeremiah Grossman
MDKSA-2004:075 - Updated mod_ssl packages fix potential vulnerabilities Mandrake Linux Security Team
Aladdin response regarding eSafe Ofer Elzam
Re: [ GLSA 200407-20 ] Subversion: Vulnerability in mod_authz_svn Jack Repenning
MDKSA-2004:072 - Updated postgresql packages fix buffer overflow in odbc driver Mandrake Linux Security Team
MDKSA-2004:074 - Updated webmin packages correct remote attacker vulnerabilities Mandrake Linux Security Team
Pavuk Digest Authentication Buffer Overflow mattmurphy () kc rr com
Re: [Full-Disclosure] Internet Explorer Remote Null Pointer Crash(mshtml.dll) Berend-Jan Wever
MDKSA-2004:073 - Updated XFree86 packages fix issue with xdm opening random sockets Mandrake Linux Security Team
UnixWare 7.1.3up : tcpdump several vulnerabilities in tcpdump. please_reply_to_security
AntiBoard <= 0.7.2 XSS/SQL Injection Josh Gilmour
Re: eSafe: Could this be exploited? Kev Ford
Re: [Full-Disclosure] Crash IE with 11 bytes ;) Berend-Jan Wever
Re: CVS woes: .cvspass Andreas Beck
Thursday, 29 July
OpenServer 5.0.6 OpenServer 5.0.7 : Multiple Vulnerabilities in Sendmail please_reply_to_security
ERRATA: [ GLSA 200407-21 ] Samba: Multiple buffer overflows Thierry Carrez
[ GLSA 200407-21 ] Samba: Multiple buffer overflows Kurt Lieber
Linpha 0.9.4: authentication bypass Rubén Molina
lostBook v1.1 Javascript Execution Joseph Moniz
RE: Forward:FullDisclosure/IE - Possible Address Spoofing Michael Silk
MDKSA-2004:076 - Updated sox packages fix buffer overflows with malicious .wav files Mandrake Linux Security Team
RE: Forward:FullDisclosure/IE - Possible Address Spoofing Chenghuai Lu
DansGuardian Hex Encoding URL Banned Extension Filter Bypass Vulnerability Rubén Molina
File downloads in Opera at known locations Rohit Dube
Jaws 0.4: authentication bypass Rubén Molina
Friday, 30 July
Re: Aladdin response regarding eSafe 3APA3A
[ GLSA 200407-22 ] phpMyAdmin: Multiple vulnerabilities Thierry Carrez
Re: OpenServer 5.0.6 OpenServer 5.0.7 : Multiple Vulnerabilities in Sendmail George Capehart
[CLA-2004:854] Conectiva Security Announcement - samba Conectiva Updates
MDKSA-2004:077 - Updated wv packages fix vulnerability Mandrake Linux Security Team
Re: Aladdin response regarding eSafe Aleksandar Milivojevic
Citadel/UX Remote DoS Vulnerability CoKi
Re: File downloads in Opera at known locations Josh Tolley
WpQuiz Gain Admin Rightd Exploit found jonathan tough
[CLA-2004:855] Conectiva Security Announcement - sox Conectiva Updates
Fusion News Yet Another Unauthorized Account Addition Vulnerability Joseph Moniz
[ GLSA 200407-23 ] SoX: Multiple buffer overflows Thierry Carrez
Re: CVS woes: .cvspass Delian Krustev
Saturday, 31 July
Fwd: New possible scam method : forged websites using XUL (Firefox) David Ahmad
Re: eSafe: Could this be exploited? Nick FitzGerald
UnixWare 7.1.3 Open UNIX 8.0.0 : Xsco contains a buffer overflow that could be exploited to gain root privileges. please_reply_to_security
OpenServer 5.0.6 OpenServer 5.0.7 : OpenSSL Multiple Vulnerabilities please_reply_to_security
OpenServer 5.0.6 OpenServer 5.0.7 : uudecode does not check for symlink or pipe please_reply_to_security
[VSA0402] OpenFTPD format string vulnerability VOID.AT Security
OpenServer 5.0.6 OpenServer 5.0.7 : Xsco contains a buffer overflow that could be exploited to gain root privileges. please_reply_to_security
Re: New possible scam method : forged websites using XUL (Firefox) Marc
Re: [Full-Disclosure] Re: Mozilla Firefox Certificate Spoofing Juan Carlos Navea
Sonicwall diag tool includes VPN credentlials Milton Lopez
[EXPL] (MS04-022) Microsoft Windows XP Task Scheduler (.job) Universal Exploit houseofdabus HOD